CSPI...Re: The Colonial pipeline hack..."It's time to get off the merry-go-round"...
5/8/2021 The Colonial Pipeline Hack Is a New Extreme for Ransomware
An attack has crippled the company’s operations—and cut off a large portion of the East Coast’s fuel supply—in an ominous development for critical infrastructure. https://www.wired.com/story/colonial-pipeline-ransomware-attack/
Taken from CSPi's ARIA Cybersecurity website (April 9, 2021)...
ARIA ADR - It’s time to get off the merry-go-round
This is a lot to unpack, but what’s clear is:
The Orion attack marks a sizable shift in the extent malicious actors will go through to execute a hack. That the advice, best practices and tools aren’t working - even for the cybersecurity leaders in the industry
So, why are we still riding this merry-go-round? Our ARIA ADR and CloudADR solutions were purpose-built to address errors in cybersecurity best-practices and tools. With ARIA ADR, organizations can stop 99% of the most harmful network-borne threats including ransomware, malware, DDoS, intrusions, brute force attacks, insider threats, compromised credentials, policy violations, and data exfiltrations.
How does it do this? It’s a fully automated, AI-SOC that uses behavior-based ML threat models to identify attacks by their signature behaviors. It also the ML gives it the ability to identify attacks based upon suspicious, never before seen network or devices activities ARIA ADR provides complete visibility into the network, generating enhanced analytics for every packet traversing (even laterally) the network. With this information, along with the supplied 60+ threat models, it detects attacks as soon as they become active on the network and stops them before any harm is done. The attacks can’t hide since ARIA ADR leverages ML and AI
and doesn’t rely on current-day tools that require manual efforts and cumbersome log-based techniques that only can help detect future attacks, it does nothing for zero-day. The ARIA ADR solution is a unique, powerful and comprehensive platform
housing the capabilities of seven security tools:
No longer will organizations have to manage and correlate information from disparate tools or write complex log algorithms to update their security tools. Unlike other threat detection solutions, it delivers the benefits of “a single pane of glass solution,” with insightful dashboards and actionable information—think of it as a one-monitor SOC.
It can be operated remotely, from anywhere, and because it’s fully automated, it does not rely upon or require a highly-trained analyst and operates around the clock for complete coverage. ARIA ADR is forward-thinking and a whole different animal when it comes to stopping cyberattacks. It’s the solution that SolarWinds needed to prevent this whole mess from happening. https://blog.ariacybersecurity.com/blog/what-the-titans-of-industry-reveal-about-solarwinds-attack
It'll be interesting to see if/what CSPi has to say about the Colonial pipeline cyber attack. Earnings & cc slated for Tuesday.